Richard Levitte
1b2f8b6e2a
Things merged from the main trunk, among others some well needed Win32
...
fixes.
2000-06-23 22:24:53 +00:00
Richard Levitte
7ed20a2158
Merge of stuff from main trunk, all conflicts resolved.
2000-06-19 14:44:57 +00:00
Richard Levitte
86787f93d6
- merged in the latest from the main trunk, fixed all conflicts
...
- implemented nCipher support via the nfhwcrhk library (not well tested).
- make update + make depend
2000-06-13 16:21:06 +00:00
Richard Levitte
d44c7dcf00
Merge in code from main trunk to BRANCH_engine.
2000-06-08 11:00:37 +00:00
Richard Levitte
6a1129837a
Main trunk changes merged into BRANCH_engine. There were no
...
conflicts, which is a good thing. Propper tagging of merge point
done.
2000-05-30 07:16:56 +00:00
Bodo Möller
93d8bfcdc4
typo
2000-05-25 11:24:42 +00:00
Bodo Möller
2c05c494c0
Implement SSL_OP_TLS_ROLLBACK_BUG for servers.
...
Call dh_tmp_cb with correct 'is_export' flag.
Avoid tabs in CHANGES.
2000-05-25 09:50:40 +00:00
Bodo Möller
c129544f0f
Avoid sprintf
2000-05-21 14:21:24 +00:00
Bodo Möller
063c0502ef
Avoid sprintf.
2000-05-21 14:17:01 +00:00
Bodo Möller
2ea0910031
Avoid sprintf, and harmonize indentation.
2000-05-21 14:14:30 +00:00
Bodo Möller
33399fdee2
Avoid sprintf.
2000-05-21 14:10:05 +00:00
Ulf Möller
0e1c06128a
Get rid of more non-ANSI declarations.
2000-05-15 22:54:43 +00:00
Richard Levitte
82271cee5b
In Message-ID: <003201bfb332$14a07520$0801a8c0@janm.transactionsite.com>,
...
"Jan Mikkelsen" <janm@transactionsite.com> correctly states that the
OpenSSL header files have #include's and extern "C"'s in an incorrect
order. Thusly fixed.
2000-05-02 12:16:01 +00:00
Richard Levitte
7a807ad8a7
"make update"
2000-04-09 12:52:40 +00:00
Bodo Möller
1d90f28029
In theory, TLS v1 ciphersuites are not the same as SSL v3 ciphersuites
2000-04-06 22:33:14 +00:00
Bodo Möller
46b3bd5454
Avoid memory leak.
2000-04-06 22:25:49 +00:00
Bodo Möller
98e04f9eeb
Comments for SSL_get_peer_cert_chain inconsistency.
2000-03-27 18:07:45 +00:00
Bodo Möller
617d71bc12
NeXT workaround.
2000-03-26 12:27:30 +00:00
Bodo Möller
448e2f9ba7
Use correct function names in SSLerr macros.
2000-03-14 14:10:56 +00:00
Bodo Möller
7d2509b6df
Update usage info
2000-03-13 19:30:59 +00:00
Bodo Möller
65b002f399
Update test suite so that 'make test' succeeds in 'no-rsa' configuration.
2000-03-13 19:24:39 +00:00
Bodo Möller
e11f0de67f
Copy DH key (if available) in addition to the bare parameters
...
in SSL_new.
If SSL_OP_SINGLE_DH_USE is set, don't waste time in SSL_[CTX_]set_tmp_dh
on computing a DH key that will be ignored anyway.
ssltest -dhe1024dsa (w/ 160-bit sub-prime) had an unfair performance
advantage over -dhe1024 (safe prime): SSL_OP_SINGLE_DH_USE was
effectively always enabled because SSL_new ignored the DH key set in
the SSL_CTX. Now -dhe1024 takes the server only about twice as long
as -dhe1024dsa instead of three times as long (for 1024 bit RSA
with 1024 bit DH).
2000-03-13 17:07:04 +00:00
Bodo Möller
563f1503a8
Connection timings (using ISO C function clock()).
2000-03-13 15:06:54 +00:00
Bodo Möller
863fe2ecac
cleaning up a little
2000-03-12 23:27:14 +00:00
Bodo Möller
e458958280
Always use fixed DH parameters created with 'dhparam -C',
...
don't dynamically create them. This allows using ssltest
for approximate performance comparisons:
$ time ./ssltest -num 50 -tls1 -cert ../apps/server2.pem \
[-no_dhe|-dhe1024dsa|-dhe1024]
(server2.pem contains a 1024 bit RSA key, the default has only
512 bits.) Note that these timings contain both the server's and
the client's computations, they are not a good indicator for
server workload in different configurations.
2000-03-10 13:23:20 +00:00
Bodo Möller
4013f3bf1e
Fix the indentation, and avoid a compiler warning.
2000-03-06 10:21:57 +00:00
Richard Levitte
fe10275da8
Let's not lie to the people.
2000-03-06 07:31:17 +00:00
Bodo Möller
59fc2b0fc2
Preserve reason strings in automatically build tables.
2000-03-05 00:19:36 +00:00
Richard Levitte
cde28e18bf
New logical names to skip algorithms are now supported.
2000-02-27 10:41:31 +00:00
Dr. Stephen Henson
8ab59e7a49
Fix shadow warning.
2000-02-26 02:16:36 +00:00
Richard Levitte
1e7396beeb
Some time in history, SSL_CTX_sessions() disappeared. It is now
...
restored, but not as a macro this time...
2000-02-25 22:50:28 +00:00
Bodo Möller
87a025cbb4
Use unsigned loop index to make compilers happy
2000-02-25 16:36:07 +00:00
Bodo Möller
b08b07b8ae
The previous revision should have generated _more_ warnings, not less ...
...
The return value of handshake_func is signed, not unsigned.
2000-02-25 15:32:36 +00:00
Geoff Thorpe
4621a00063
More VC++ pickiness. (destest.c doesn't have a "return" and the usual
...
signed/unsigned stuff in s3_pkt.c)
Submitted by:
Reviewed by:
PR:
2000-02-25 15:09:04 +00:00
Bodo Möller
3813046dc5
Add OpenSSL licen[cs]e.
2000-02-25 14:47:38 +00:00
Bodo Möller
e01eed0fae
Fix off-by-one error :-)
2000-02-25 14:40:11 +00:00
Bodo Möller
e5599db448
Fix warnings by using unsigned int where appropriate.
2000-02-25 14:27:31 +00:00
Ulf Möller
a3b17baf4e
signed/unsigned mismatch (VC++)
...
Submitted by: Peter 'Luna' Runestig" <peter+openssl-users@runestig.com>
2000-02-25 14:03:21 +00:00
Dr. Stephen Henson
fbb41ae0ad
Allow code which calls RSA temp key callback to cope
...
with a failure.
Fix typos in some error codes.
2000-02-25 00:23:48 +00:00
Richard Levitte
29a5374fb6
Remove structures that are no longer used.
2000-02-24 14:00:05 +00:00
Ulf Möller
4d524e10b4
nicer manpages
2000-02-24 11:55:57 +00:00
Ralf S. Engelschall
c6a33c6f61
Add missing prototypes for new functions
2000-02-24 10:48:36 +00:00
Ulf Möller
4c5fac4ac4
Fix NO_RSA (misplaced #endif).
2000-02-24 04:41:03 +00:00
Richard Levitte
e6a58767c5
make update
2000-02-23 23:38:59 +00:00
Dr. Stephen Henson
3142c86d65
Allow ADH to be used but not present in the default cipher
...
list.
Allow CERTIFICATE to be used in PEM headers for PKCS#7 structures:
some CAs do this.
2000-02-23 01:11:01 +00:00
Dr. Stephen Henson
72b60351f1
Change EVP_MD_CTX_type so it is more logical and add EVP_MD_CTX_md for
...
the old functionality.
Various warning fixes.
Initial EVP symmetric cipher docs.
2000-02-22 02:59:26 +00:00
Bodo Möller
1b8a8088a5
Workarounds to make broken programs happy (such as s_client and s_server).
2000-02-21 17:46:20 +00:00
Bodo Möller
a2a0158959
Fix some bugs and document others
2000-02-21 17:09:54 +00:00
Bodo Möller
e7ecc7d4dd
Move ssl3_do_write from s3_pkt.c to s3_both.c.
2000-02-21 11:14:40 +00:00
Bodo Möller
745c70e565
Move MAC computations for Finished from ssl3_read_bytes into
...
ssl3_get_message, which is more logical (and avoids a bug,
in addition to the one that I introduced yesterday :-)
and makes Microsoft "fast SGC" less special.
MS SGC should still work now without an extra state of its own
(it goes directly to SSL3_ST_SR_CLNT_HELLO_C, which is the usual state
for reading the body of a Client Hello message), however this should
be tested to make sure, and I don't have a MS SGC client.
2000-02-21 10:16:30 +00:00